You are here

Home » API reference » Lightweight Directory Access Protocol (LDAP) 8.4

docker.sh in Lightweight Directory Access Protocol (LDAP) 8.4

Same filename and directory in other branches
  1. 8.3 docs/hogwarts/docker.sh
#!/bin/bash

LDAP_DOMAIN=hogwarts.edu
LDAP_DN=dc=hogwarts,dc=edu
LDIF_FILE=hogwarts.people.ldif
SLAPD=slapd
DOCKER_PORT=9389
DOCKER_NAME=hogwarts_ldap
DOCKER_IP=127.0.0.1

read -p "Bind method ([service_account], user, anon_user): " METHOD
METHOD=${METHOD:-service_account}

echo "Stopping all LDAP docker instances"
array=( service_account user anon_user )
for i in "${array[@]}"
do
    CID_SERVICE=`docker ps --filter "name=${DOCKER_NAME}.${i}" --format "{{.ID}}"`
    if [ $CID_SERVICE ]
        then
            docker stop $CID_SERVICE
    fi
done

LDAP_CID=`docker ps -a --filter "name=${DOCKER_NAME}.${METHOD}" --format "{{.ID}}"`
if [ $LDAP_CID ]
	then
		echo "Removing existing $DOCKER_NAME with $METHOD"
		docker rm $LDAP_CID
fi

echo "Starting $DOCKER_NAME with $METHOD"
LDAP_CID=$(docker run -e LDAP_TLS=false -e LDAP_DOMAIN="$LDAP_DOMAIN" -p $DOCKER_PORT:389 --name="${DOCKER_NAME}.${METHOD}" -d osixia/openldap)

if [ -z "$LDAP_CID" ]
	then
	echo "No LDAP CID. Exiting."
	exit
fi

docker cp $LDIF_FILE $LDAP_CID:/$LDIF_FILE
docker cp grants.${METHOD}.ldif $LDAP_CID:/grants.ldif

sleep 3
echo "Importing user and group structure"
# The admin user is provided by the docker container.
ldapadd -h $DOCKER_IP -p $DOCKER_PORT -x -D "cn=admin,$LDAP_DN" -w admin -f $LDIF_FILE

echo "Adding permissions for chosen binding method"
docker exec -it $LDAP_CID ldapmodify -Y EXTERNAL -H ldapi:/// -f /grants.ldif

echo "==================="
echo "Querying directory:"
echo "==================="
if [ "$METHOD" == "service_account" ]
    then
    echo "Searching LDAP (service account credentials)"
    ldapsearch -x -h $DOCKER_IP -p $DOCKER_PORT -b $LDAP_DN -D "cn=admin,$LDAP_DN" -w admin "(cn=hgranger)" dn
elif [ "$METHOD" == "user" ]
    then
    echo "Searching LDAP (user credentials)"
    ldapsearch -x -h $DOCKER_IP -p $DOCKER_PORT -b $LDAP_DN -D "cn=hpotter,ou=people,$LDAP_DN" -w pass "(cn=hgranger)" dn
elif [ "$METHOD" == "anon_user" ]
    then
    echo "Searching LDAP (user credentials)"
    ldapsearch -x -h $DOCKER_IP -p $DOCKER_PORT -b $LDAP_DN "(cn=hgranger)" dn
fi

File

docs/hogwarts/docker.sh
View source 
  1. #!/bin/bash

  2. 

  3. LDAP_DOMAIN=hogwarts.edu

  4. LDAP_DN=dc=hogwarts,dc=edu

  5. LDIF_FILE=hogwarts.people.ldif

  6. SLAPD=slapd

  7. DOCKER_PORT=9389

  8. DOCKER_NAME=hogwarts_ldap

  9. DOCKER_IP=127.0.0.1

  10. 

  11. read -p "Bind method ([service_account], user, anon_user): " METHOD

  12. METHOD=${METHOD:-service_account}

  13. 

  14. echo "Stopping all LDAP docker instances"

  15. array=( service_account user anon_user )

  16. for i in "${array[@]}"

  17. do

  18.     CID_SERVICE=`docker ps --filter "name=${DOCKER_NAME}.${i}" --format "{{.ID}}"`

  19.     if [ $CID_SERVICE ]

  20.         then

  21.             docker stop $CID_SERVICE

  22.     fi

  23. done

  24. 

  25. LDAP_CID=`docker ps -a --filter "name=${DOCKER_NAME}.${METHOD}" --format "{{.ID}}"`

  26. if [ $LDAP_CID ]

  27. 	then

  28. 		echo "Removing existing $DOCKER_NAME with $METHOD"

  29. 		docker rm $LDAP_CID

  30. fi

  31. 

  32. echo "Starting $DOCKER_NAME with $METHOD"

  33. LDAP_CID=$(docker run -e LDAP_TLS=false -e LDAP_DOMAIN="$LDAP_DOMAIN" -p $DOCKER_PORT:389 --name="${DOCKER_NAME}.${METHOD}" -d osixia/openldap)

  34. 

  35. if [ -z "$LDAP_CID" ]

  36. 	then

  37. 	echo "No LDAP CID. Exiting."

  38. 	exit

  39. fi

  40. 

  41. docker cp $LDIF_FILE $LDAP_CID:/$LDIF_FILE

  42. docker cp grants.${METHOD}.ldif $LDAP_CID:/grants.ldif

  43. 

  44. sleep 3

  45. echo "Importing user and group structure"

  46. # The admin user is provided by the docker container.

  47. ldapadd -h $DOCKER_IP -p $DOCKER_PORT -x -D "cn=admin,$LDAP_DN" -w admin -f $LDIF_FILE

  48. 

  49. echo "Adding permissions for chosen binding method"

  50. docker exec -it $LDAP_CID ldapmodify -Y EXTERNAL -H ldapi:/// -f /grants.ldif

  51. 

  52. echo "==================="

  53. echo "Querying directory:"

  54. echo "==================="

  55. if [ "$METHOD" == "service_account" ]

  56.     then

  57.     echo "Searching LDAP (service account credentials)"

  58.     ldapsearch -x -h $DOCKER_IP -p $DOCKER_PORT -b $LDAP_DN -D "cn=admin,$LDAP_DN" -w admin "(cn=hgranger)" dn

  59. elif [ "$METHOD" == "user" ]

  60.     then

  61.     echo "Searching LDAP (user credentials)"

  62.     ldapsearch -x -h $DOCKER_IP -p $DOCKER_PORT -b $LDAP_DN -D "cn=hpotter,ou=people,$LDAP_DN" -w pass "(cn=hgranger)" dn

  63. elif [ "$METHOD" == "anon_user" ]

  64.     then

  65.     echo "Searching LDAP (user credentials)"

  66.     ldapsearch -x -h $DOCKER_IP -p $DOCKER_PORT -b $LDAP_DN "(cn=hgranger)" dn

  67. fi